Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/JOwNAJ7D55_mEJEqdxdQQrlC4d8.roa
File: JOwNAJ7D55_mEJEqdxdQQrlC4d8.roa (raw, json)
Hash identifier: 0+CWDt6u7K1h2jQmgEsIE7cgSfL4066G4xQzg9AoKjI=
Subject key identifier: 24:EC:0D:00:9E:C3:E7:9F:E6:10:91:2A:77:17:50:42:B9:42:E1:DF
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0186C086201455A7752A0454A71A48685091
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/JOwNAJ7D55_mEJEqdxdQQrlC4d8.roa
Signing time: Wed 08 Mar 2023 09:21:00 +0000
ROA not before: Wed 08 Mar 2023 09:21:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 148.253.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 01:13:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:86:20:14:55:a7:75:2a:04:54:a7:1a:48:68:50:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Mar 8 09:21:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24ec0d009ec3e79fe610912a77175042b942e1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3b:2d:93:66:88:25:3f:f5:22:5c:07:1d:fa:
00:c5:d8:c6:ef:a7:87:76:c9:d8:a9:44:c9:6d:4e:
e8:89:7f:15:8e:c0:fc:9e:ab:bb:a2:ff:f5:ea:61:
61:1e:5c:43:4e:09:97:0a:97:3e:8f:f0:6b:27:d1:
f5:bd:2e:86:e1:b0:6f:2f:78:fd:93:78:dd:a1:92:
fb:b4:f8:b8:d3:42:51:09:74:de:a2:94:7e:47:f1:
90:c9:03:3a:17:c3:a0:c7:80:08:f4:c3:c5:a5:4d:
c8:45:1b:cb:cf:7b:4f:13:03:58:1c:73:b6:01:31:
2a:cf:9e:f3:65:2a:07:70:df:9a:f9:85:80:6f:c7:
7b:d4:6b:00:2b:39:7d:df:d1:08:e5:db:8f:e0:27:
d3:bf:ea:23:9e:12:79:5e:9a:b0:34:81:ad:7e:24:
4d:d4:d3:91:99:e7:72:36:06:f6:d7:a4:fd:35:ae:
21:51:80:01:db:f0:02:bb:bc:53:c2:c0:fd:05:c3:
5a:d8:d2:29:4a:fa:be:c3:6c:bb:17:f6:ca:96:91:
00:55:b0:a2:9c:59:71:ed:9f:ae:66:a3:ca:27:2f:
ee:7c:9a:75:15:14:0d:b5:2a:24:a0:b2:bd:78:12:
c3:23:9c:fd:32:8d:91:12:10:09:ad:0a:43:b6:79:
5f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EC:0D:00:9E:C3:E7:9F:E6:10:91:2A:77:17:50:42:B9:42:E1:DF
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/JOwNAJ7D55_mEJEqdxdQQrlC4d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.253.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:36:7a:c0:94:23:2e:3e:f0:ef:0f:87:91:bf:1d:63:07:c6:
b8:27:db:03:d0:1d:13:f4:9a:d6:8f:6e:62:2d:ce:f1:6a:af:
09:04:4d:d2:4a:c2:36:25:96:b1:80:db:b6:28:18:25:52:ba:
50:0b:37:cc:33:9a:cf:24:e0:88:88:00:c5:41:f8:45:c7:f2:
8b:bf:71:6a:25:4e:2a:6a:c0:96:8b:f0:2c:9c:8b:e0:0b:b3:
9e:41:9a:82:a6:66:d4:94:ca:a7:11:42:d1:bd:08:cf:82:2e:
17:55:05:a2:3e:1a:0d:ce:44:da:11:7f:94:77:25:a9:93:b1:
92:18:ec:a5:98:48:a1:94:f1:23:83:c8:cc:61:b0:9e:7c:a0:
9a:40:85:b9:ac:bf:22:e7:3f:3e:d3:2a:d3:1e:ec:16:f3:1b:
87:ab:ea:ea:0d:be:d4:40:c2:2a:27:82:b7:0a:1a:d5:77:e4:
6c:6d:b2:f9:af:76:98:5c:cc:77:b3:b0:5f:7e:4e:75:31:3d:
05:02:a6:40:50:70:bb:79:94:2b:63:54:91:75:71:62:03:ac:
60:dc:df:5d:95:42:87:07:33:d2:8b:cc:7e:44:da:30:8a:c8:
22:97:24:25:e3:50:83:9e:57:db:c7:6a:47:2a:7b:12:a7:0e:
16:27:fc:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org